Main > Utilities > Patches and Updates >

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018



 

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018

Sponsored Links

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018 Ranking & Summary

RankingClick at the star to rank
Ranking Level
User Review: 10 (1 times)
File size: 1K
Platform: Windows 9X/ME/NT/2K/2003/XP/Vista
License: Freeware
Price:
Downloads: 3500
Date added: 2000-03-25
Publisher: 5am Code

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018 description

Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Internet Information Server 4.0. The vulnerability could allow a malicious user to consume all resources on a web server and prevent it from servicing other users (aka Denial of Service Attack). IIS 4.0 supports chunked encoding transfers, but does not limit the size of the buffer that can be reserved. This would allow a malicioususer to request an extremely large buffer for a POST or PUT operation, but never actually send data, thereby blocking memory on the server that had been allocated to the session. If sufficient memory on the server were blocked in this fashion, it could prevent the server from performing useful work. There is no capability through this attack to create, modify or delete data on the server, nor is there anycapability to usurp administrative control of the server. If the malicious user closed his session, the memory would be released and the servers operation would return to normal.Otherwise, the machine could be put back into normal service by stopping and restarting the service.

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018 Screenshot

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018 Keywords

Bookmark Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018

Hyperlink code:
Link for forum:

Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018 Copyright

WareSeeker.com do not provide cracks, serial numbers etc for Microsoft IIS 4.0 Chunked Encoding Post Vulnerability patch MS00-018. Any sharing links from rapidshare.com, yousendit.com or megaupload.com are also prohibited.

Allok Video Splitter 2.2.0 Review:

Name (Required)
Email(Required)
Captcha
Featured Software

Want to place your software product here?
Please contact us for consideration.

Contact WareSeeker.com
Related Software
Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Internet Information Server. The vulnerability could be used to slow the performance of an affected server, or te Free Download
If a specially-malformed TDS packet is sent to a SQL server, it can cause the SQL service to crash. This vulnerability would not allow any inappropriate access to the data on the server, nor would it Free Download
Cumulative (critical) Security Update for Internet Explorer (834707) Free Download
Windows 95 Service Pack 1 includes an update, system administration tools, additional components, and drivers for Windows Free Download
update to the popular office suite Free Download
Microsoft Office Compatibility Pack 2007 File Formats - Open, edit, and save files using the file new formats Free Download
If a connection to a server running the Windows Media Unicast Service was started, then severed, in a particular way, the service would “leak” some of the resources that were allocated during the co Free Download